WO2012013126A1 - Procédé, dispositif et système d'accès inter-hôtes - Google Patents

Procédé, dispositif et système d'accès inter-hôtes Download PDF

Info

Publication number
WO2012013126A1
WO2012013126A1 PCT/CN2011/077351 CN2011077351W WO2012013126A1 WO 2012013126 A1 WO2012013126 A1 WO 2012013126A1 CN 2011077351 W CN2011077351 W CN 2011077351W WO 2012013126 A1 WO2012013126 A1 WO 2012013126A1
Authority
WO
WIPO (PCT)
Prior art keywords
address
ipv6
client device
packet
ipv4
Prior art date
Application number
PCT/CN2011/077351
Other languages
English (en)
Chinese (zh)
Inventor
崔勇
董江
吴鹏
郭大勇
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Publication of WO2012013126A1 publication Critical patent/WO2012013126A1/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/251Translation of Internet protocol [IP] addresses between different IP versions

Definitions

  • IPv4 networks and IPv6 networks will coexist for a long time.
  • IPv4/IPv6 interconnected network some routers running only the IPv6 protocol stack form a pure IPv6 backbone. Since the IPv4 network and the IPv6 network will coexist for a long time, the pure IPv6 backbone network needs to provide IPv4 protocol stack access services to the border network.
  • Dual-stack lite is a tunneling technology that provides a way for a private IPv4 network or host to access an IPv4 network across an IPv6 access network.
  • the packets sent by the HI to the IPv4 network are first passed through the Customer Premises Equipment (CPE), which is the IPv6 of the CPE1.
  • the IPv6 address of the packet is the IPv6 address of the CPE1.
  • the destination IPv6 address is the IPv6 address of the Carrier Grade NAT (CGN). Then, through the IPv4-over-IPv6 tunnel between CPE1 and CGN, the CGN is reached.
  • CPE Customer Premises Equipment
  • the CGN After receiving the IPv6 packet, the CGN decapsulates the IPv6 packet and converts the source private IPv4 address and port in the IPv6 packet to the public IPv4 address and port. Then, the IPv6 packet is sent to the CPE2 through the tunnel between the CGN and the CPE2, and forwarded to the H2 of the IPv4 network through the CPE2.
  • the inventors have found that at least the following problems exist in the prior art: For example, when the host HI accesses the host H2, the packet sent by the HI to the H2 needs to pass through the tunnel between the CPE and the CGN twice, which causes the network traffic of the CGN to increase, thereby increasing the network load.
  • the embodiments of the present invention provide a method, a device, and a system for accessing between hosts, which reduce network traffic and implement the purpose of forwarding packets through a tunnel between CPEs.
  • the embodiment of the invention provides a method for accessing between hosts, including:
  • the source host receives, by the source host, the first IPv4 address, where the source address of the first IPv4 packet is a private IPv4 address of the source host, and the destination address of the first IPv4 packet is a public IPv4 address of the destination host;
  • the source host and the destination host are located on different IPv4 networks, and are connected through an IPv6 network.
  • the public IPv4 address of the destination host the public IPv4 address corresponding to the destination host is obtained from the packet forwarding address information table.
  • the IPv6 address of the client device; the packet forwarding address information table is used to record a mapping entry between the public IPv4 address and the IPv6 address of the client device; the second client device is the client to which the destination host belongs.
  • the address mapping table Converting, according to the address mapping table, the private IPv4 address of the source host in the first IPv4 packet to a public IPv4 address of the source host, and the IPv6 address of the first client device and the second client
  • the IPv6 address of the device is encapsulated into the first IPv4 packet to form a first IPv6 packet;
  • the address mapping table is used to record a mapping entry between the private IPv4 address and the public IPv4 address;
  • the source address of the first IPv6 packet is an IPv6 address of the first client device
  • the destination address of the first IPv6 packet is The IPv6 address of the second client device.
  • the embodiment of the invention further provides a method for accessing between hosts, including:
  • the second IPv6 packet of the source host accessing the destination host, where the source address of the second IPv6 packet is an IPv6 address of the first client device, and the second IPv6 packet
  • the destination address is the IPv6 address of the network address translation device, and the second IPv6 packet includes the private IPv4 address of the source host and the public IPv4 address of the destination host.
  • the second IPv6 packet is used according to the network address translation table. Converting the private IPv4 address of the source host to the public IPv4 address of the source host, and searching for the IPv6 address of the second client device according to the public IPv4 address of the destination host, and the IPv6 address of the second client device and the network
  • the IPv6 address of the address translation device is encapsulated into the second IPv6 packet to form a third IPv6 packet;
  • the mapping table entry is used to record an IPv6 address of a client device that supports tunneling packets between client devices.
  • the embodiment of the invention further provides a client device, including:
  • a first IPv4 packet receiving module configured to receive a first IPv4 packet sent by the source host, where a source address of the first IPv4 packet is a private IPv4 address of the source host, and a destination of the first IPv4 packet The address is the public IPv4 address of the destination host; the source host and the destination host are located in different IPv4 networks, and are connected through an IPv6 network;
  • An address obtaining module configured to obtain, according to the public IPv4 address of the destination host, an IPv6 address of the second client device corresponding to the public IPv4 address of the destination host from the packet forwarding address information table; the packet forwarding address The information table is used to record a mapping entry between the public IPv4 address and the IPv6 address of the client device; the second client device is a client device to which the destination host belongs;
  • An address conversion module configured to convert, according to the address mapping table, the private IPv4 address of the source host in the first IPv4 packet to a public IPv4 address of the source host;
  • the address mapping table includes a private IPv4 address and a public address Mapping entries of IPv4 addresses;
  • An address encapsulating module configured to encapsulate an IPv6 address of the first client device and an IPv6 address of the second client device into the first IPv4 packet to form a first IPv6 packet;
  • a first IPv6 packet sending module configured to send the first IPv6 packet to the second client device;
  • the source address of the first IPv6 packet is an IPv6 address of the first client device,
  • the first The destination address of the IPv6 packet is the IPv6 address of the second client device.
  • the embodiment of the invention further provides a network address translation device, including:
  • a second IPv6 packet receiving module configured to receive a second IPv6 packet that is forwarded by the first client device, and the source host accesses the destination host, where the source address of the second IPv6 packet is the first client device
  • the IPv6 address, the destination address of the second IPv6 packet is the IPv6 address of the network address translation device, and the second IPv6 packet includes the private IPv4 address of the source host and the public IPv4 address of the destination host.
  • the third IPv6 packet is encapsulated.
  • a module configured to: after decapsulating the second IPv6 packet, convert the private IPv4 address of the source host in the second IPv6 packet to a public IPv4 address of the source host according to the network address translation table, and according to the destination host
  • the public IPv4 address is used to find the IPv6 address of the second client device, and the IPv6 address of the second client device and the IPv6 address of the network address translation device are encapsulated into the second IPv6 packet to form a third IPv6 packet.
  • a third IPv6 packet sending module configured to send the third IPv6 packet to the second client device
  • An address information sending module configured to send a source host to the first client device when the IPv6 address of the second client device and the IPv6 address of the first client device are recorded in the client device address table a mapping entry between the private IPv4 address and the public IPv4 address of the source host, and a mapping entry between the public IPv4 address of the destination host and the IPv6 address of the second client device; the client device address table Used to record the IPv6 address of a client device that supports tunneling packets between client devices.
  • the embodiment of the invention further provides an access system between hosts, including:
  • a source host a destination host, a first client device, and a second client device
  • the source host is configured to send, to the first client device, the first IPv4 packet that is used to access the destination host; the source address of the first IPv4 packet is a private IPv4 address of the source host, The host is located on a different IPv4 network and connected through an IPv6 network;
  • the first client device is configured to obtain a destination host according to the packet forwarding address information table.
  • the IPv6 address of the second client device corresponding to the public IPv4 address; and converting the private IPv4 address of the source host in the first IPv4 packet to the public IPv4 address of the source host according to the address mapping table, and
  • the IPv6 address of the first client device and the IPv6 address of the second client device are encapsulated into the first IPv4 packet to form a first IPv6 packet and sent to the second client device;
  • the second client device is configured to receive the first IPv6 packet sent by the first client device, and send the first IPv6 packet to the destination host.
  • the method, device, and system for accessing between hosts in the embodiment of the present invention are located on the IPv4 network to which the source host belongs and the CPE at the edge of the IPv6 network, and receive the first IPv4 packet of the IPv4 network when the source host accesses the IPv4 network through the IPv6 access network.
  • the saved packet forwarding address information table obtains the IPv6 address of the second CPE corresponding to the public IPv4 address of the destination host in the first IPv4 packet, so that the source CPE sends the packet to the destination through the IPv6 address of the second CPE.
  • the second CPE to which the host is connected.
  • the private IPv4 address of the source host in the first IPv4 packet is translated into the public IPv4 address of the source host according to the locally saved address mapping table. Therefore, in the embodiment of the present invention, when the source host traverses the IPv6 access network to access the destination host in the IPv4 network, the tunnel between the source CPE and the second CPE does not need to pass through the tunnel between the CPE and the CGN. Therefore, the access traffic to the CGN is reduced, thereby reducing the network load.
  • FIG. 1 is a flowchart of an embodiment of an access method between hosts according to the present invention
  • FIG. 1B is a schematic diagram of an application scenario of an access method between hosts according to the present invention
  • FIG. 2A is a flowchart of another method for accessing between hosts according to the present invention
  • FIG. 2B is a schematic diagram of an application scenario of another method for accessing between hosts according to the present invention
  • FIG. 3 is a flowchart of another method for accessing between hosts according to the present invention
  • FIG. 4 is a schematic structural diagram of Embodiment 1 of a client device according to the present invention
  • FIG. 5 is a schematic structural diagram of Embodiment 2 of a client device according to the present invention
  • FIG. 6 is a schematic structural diagram of Embodiment 1 of a network address translation device according to the present invention.
  • FIG. 7 is a schematic structural diagram of Embodiment 2 of a network address translation device according to the present invention.
  • FIG. 8 is a schematic structural diagram of Embodiment 1 of an access system between hosts according to the present invention
  • FIG. 9 is a schematic structural diagram of Embodiment 2 of an access system between hosts according to the present invention.
  • the embodiment of the present invention provides an optimization method for inter-host communication in a dual-stack lite scenario, in which a packet is directly forwarded through a tunnel between CPEs, and the tunnel is not required to be forwarded through a tunnel between the CPE and the CGN, thereby reducing the network. flow.
  • the embodiment of the present invention is also applicable to multicast packets, and is also applicable to packet forwarding between a source end and a destination end with mobility.
  • FIG. 1A is a flowchart of an embodiment of a method for accessing between hosts according to the present invention.
  • FIG. 1B is a schematic diagram of an application scenario of an access method between hosts according to an embodiment of the present invention.
  • the host source host HI accesses the destination host H2 located in the IPv4 network through the IPv6 network
  • the first CPE (CPE1) and the second CPE (CPE2) are sent to send the HI packet to H2.
  • the execution body of this embodiment is the CPE1 shown in Fig. 1B, that is, the first CPE.
  • the packet forwarding address information table and the address mapping table are saved in the first CPE.
  • the entries in the message forwarding address information table and the address mapping table may be preset by the CGN in the first CPE, or may be sent to the CPE in real time by the CGN.
  • the mapping entry of the IPv6 address of the public IPv4 address and the CPE is recorded in the packet forwarding address information table.
  • the address mapping table is used to record mapping entries between private IPv4 addresses and public IPv4 addresses.
  • Table 1 shows the packet forwarding address information table.
  • the destination IPv6 address corresponding to the public IPv4 address of the destination is the IPv6 address of the CGN by default.
  • the CPE processes the IPv4 packet according to the existing method: the IPv4 packet is forwarded to the CGN through the tunnel between the CPE and the CGN.
  • Table 2 is the address mapping table. As shown in FIG. 1A, this embodiment includes:
  • Step 11 Receive the first IPv4 packet sent by the source host, where the destination host is located in the IPv4 network, the source address of the first IPv4 packet is the private IPv4 address of the source host, and the destination address of the first IPv4 packet is the public address of the destination host. IPv4 address;
  • the source and destination hosts are on different IPv4 networks and connected through an IPv6 network.
  • the source host traverses the IPv6 network to access the destination host in the other IPv4 network
  • the first IPv4 packet is sent to the router between the local IPv4 network and the IPv6 network.
  • the CPE1 is called the first CPE in this embodiment.
  • the first IPv4 packet also includes the port number of the source host and the port number of the destination host. Because the number of IP addresses is limited, the port number can be used for multiplexing.
  • Step 12 Obtain an IPv6 address of the second CPE corresponding to the public IPv4 address of the destination host from the packet forwarding address information table according to the public IPv4 address of the destination host.
  • the packet forwarding address information table includes the public IPv4 address and the second CPE.
  • Step 13 Convert the private IPv4 address of the source host in the first IPv4 packet to the public IPv4 address of the source host according to the address mapping table, and the IPv6 address of the first CPE and the second CPE IPv6 The address is encapsulated into the first IPv4 packet to form a first IPv6 packet.
  • the private IPv4 address and port of the source host in the packets sent to the second CPE must be translated into the source public IPv4 address and port.
  • the destination host can directly send packets to the source host using the source public IPv4 address and port.
  • the first CPE After receiving the first IPv4 packet sent by the source host, the first CPE obtains the IPv6 address of the second CPE corresponding to the public IPv4 address of the destination host from the packet forwarding address information table (the IPv6 address of the second CPE is the destination host)
  • the local CPE, and the IPv6 address of the first CPE and the IPv6 address of the second CPE are encapsulated into the first IPv4 packet.
  • the private IPv4 address of the source host in the first IPv4 packet is translated into the public IPv4 address of the source host to form the first IPv6 packet.
  • Step 14 Send the first IPv6 packet to the second CPE.
  • the source address of the first IPv6 packet is the IPv6 address of the first CPE
  • the destination address of the first IPv6 packet is the IPv6 address of the second CPE.
  • the second CPE converts the public IPv4 address of the first IPv6 packet to the destination private IPv4 address according to the local address mapping table to form a second IPv4 packet. Then, the second IPv4 packet is sent to the destination host in the IPv4 grid according to the destination private IPv4 address.
  • the first CPE is located on the IPv4 network to which the source host belongs and is at the edge of the IPv6 network.
  • the first CPE source host After receiving the first IPv4 packet of the host in the other IPv4 network, the first CPE source host obtains the second IPv4 address corresponding to the destination host in the first IPv4 packet according to the locally saved packet forwarding address information table.
  • the IPv6 address of the CPE so that the first CPE sends the packet to the second CPE connected to the destination host through the IPv6 address of the second CPE.
  • the private IPv4 address of the source host in the first IPv4 packet is translated into the public IPv4 address of the source host according to the locally saved address mapping table.
  • FIG. 2A is a flow chart of another embodiment of an access method between hosts according to the present invention.
  • FIG. 2B is a schematic diagram of an application scenario of another method for accessing between hosts according to the present invention.
  • the execution subject of this embodiment is CGN.
  • the main difference between this embodiment and the prior art is that after receiving the second IPv6 packet sent by the first CPE, the CGN performs step 24 in addition to step 21 to step 23.
  • this embodiment includes:
  • Step 21 The CGN receives the second IPv6 packet sent by the first CPE.
  • the first CPE receives the first IPv4 address sent by the source host (HI in FIG. 2B) and the destination host (H2 in FIG. 2B) for the first time, and encapsulates the IPv6 address of the first CPE and the IPv6 address of the CGN to the first CPE.
  • a second IPv6 packet is formed in the first IPv4 packet, and the second IPv6 packet is sent to the CGN.
  • the source address of the first IPv4 packet is the private IPv4 address of the source host, and the destination address is the public IPv4 address of the destination host.
  • the source address of the second IPv6 packet is the IPv6 address of the first CPE, and the second IPv6 packet is The destination address is the IPv6 address of the CGN.
  • the second IPv6 packet includes the private IPv4 address of the source host and the public IPv4 address of the destination host.
  • Step 22 The CGN converts the private IPv4 address of the source host in the second IPv6 packet to the public IPv4 address of the source host according to the network address translation table, and searches for the IPv6 address of the second CPE according to the public IPv4 address of the destination host.
  • the IPv6 address of the CPE and the IPv6 address of the CGN are encapsulated into the second IPv6 packet to form a third IPv6 packet.
  • the CGN searches for an address mapping entry in the network address translation table, and translates the private IPv4 address of the source host in the second IPv6 packet into a corresponding public IP address. If there is no related mapping entry in the network address translation table.
  • the CGN allocates a public IP address (including a port) to the private IPv4 address of the source host, and saves the mapping entry to the address mapping table.
  • the CGN searches for the IPv6 address of the CPE to which the destination host belongs, that is, the IPv6 address of the second CPE, and encapsulates the IPv6 address of the second CPE and the IPv6 address of the CGN into the second IPv6 packet, according to the public IP address of the destination host.
  • the third IPv6 packet The source address of the third IPv6 packet is the IPv6 address of the CGN, and the destination address is the IPv6 address of the second CPE.
  • Step 23 The CGN sends a third IPv6 packet to the second CPE.
  • Step 24 When the IPv6 address of the second CPE and the IPv6 address of the first CPE are recorded in the CPE address table, the mapping entry of the private IPv4 address of the source host and the public IPv4 address of the source host, and the destination are sent to the first CPE. A mapping entry between the public IPv4 address of the host and the IPv6 address of the second CPE.
  • the above CPE address table (the client device ground table) is used to record the IPv6 address of the CPE that supports tunnel forwarding between CPEs.
  • Step 23 is executed in synchronization with step 24.
  • the first CPE When the first CPE receives the first IPv4 packet sent by the source host, the first CPE forwards the first IPv4 packet to the second CPE through the tunnel between the CPEs without going through the first CPE and the CGN. Inter- tunnel (sending a second IPv6 message), and a tunnel between the CGN and the second CPE (sending a third IPv6 message). Therefore, the CGN needs to send the mapping entry of the address mapping entry (the mapping between the private IPv4 address and the public IP address) and the mapping between the public IP address of the destination host and the IPv6 address of the second CPE to the first CPE. , so that the first CPE is saved locally.
  • the first CPE When receiving the first IPv4 packet sent by the source host, the first CPE searches for the public IPv4 address corresponding to the source private IPv4 address in the first IPv4 packet, and searches for the corresponding local IPv4 address according to the destination host.
  • the IPv6 address of the second CPE The IPv6 address of the first CPE and the IPv6 address of the second CPE are encapsulated into the first IPv4 packet to form a first IPv6 packet to be sent to the second CPE.
  • the CGN When the CGN sends the address mapping entry used in the step 23 and the IPv6 address of the second CPE to the first CPE, it is determined whether the first CPE and the second CPE support the forwarding of the packet through the tunnel between the CPEs.
  • the CGN locally searches for the record information in the CPE address table.
  • the CGN sends the address mapping entry and the IPv6 of the CPE corresponding to the public IPv4 address of the destination host to the first CPE. address. As shown in Table 3, the CPE address table holds the IPv6 address of the CPE.
  • Table 3 shows the CPE address table.
  • IPv6 address of CPE2 The process of establishing a CPE address table is as follows:
  • the CGN receives the first registration information sent by the second CPE and the second registration information sent by the first CPE, where the first registration information includes an IPv6 address of the first CPE, and the second registration information includes an IPv6 address of the first CPE;
  • the IPv6 address of the first CPE and the IPv6 address of the second CPE are saved to the CPE address table.
  • the destination host when the destination host sends the packet to the source host for the first time, the packet is sent in the same manner as in the previous embodiment to prepare for subsequent packet forwarding between the CPE tunnels.
  • the source host, the first CPE, the destination host, and the second CPE are relative concepts.
  • the CGN converts the source private IPv4 address in the second IPv6 packet into a public IPv4 address, and searches according to the public IPv4 address of the destination host.
  • the third IPv6 service message is sent to the second CPE, and the mapping entry between the private IPv4 address and the public IPv4 address and the public IPv4 address of the destination host are also sent to the first CPE.
  • the first CPE when receiving the IPv4 packet sent by the source host, forwards the IPv4 packet to the second CPE through the CPE tunnel according to the mapping entry sent by the CGN, without passing through the tunnel between the CPE and the CGN. . Therefore, this embodiment reduces the network traffic of the CGN and reduces the network load.
  • FIG. 3 is a flowchart of still another embodiment of an access method between hosts according to the present invention.
  • Step 30 The CPE1 sends the first registration information of the IPv6 address of the CPE1 to the CGN.
  • the CPE2 sends the second registration information including the IPv6 address of the destination CPE to the CGN.
  • the CPE1 sends the CGN1 to the CGN. registration message.
  • the CGN establishes a CPE address table locally. The table records the IPv6 addresses of the CPEs that forward packets in the tunnel between the CPEs.
  • Step 32 The CPE1 receives the first IPv4 packet sent by the source host.
  • the HI source host
  • the HI source host
  • the H2 destination host
  • the source address and port of the first IPv4 packet are the private IPv4 address and private port of the source host.
  • the destination address and port are the public IPv4 address and private port of the destination host.
  • Table 3 The main contents of the first IPv4 packet are shown in Table 3.
  • Step 33 CPE1 encapsulates the IPv6 address of the CPE1 and the IPv6 address of the CGN into the first IPv4 packet to form a second IPv6 packet, and sends the packet to the CGN.
  • the source address of the second IPv6 packet is the IPv6 address of the CPE1, and the destination address of the second IPv6 packet is the IPv6 address of the CGN.
  • the main contents of the second IPv6 packet are shown in Table 4.
  • Table 4 shows the main contents of the second IPv6 packet.
  • CPE1 receives the IPv4 packet from H2 that is sent by HI for the first time, the IPv6 address of CPE2 corresponding to the H2 public address and the port is not saved in the address mapping table of CPE1. It cannot be directly between CPE1 and CPE2.
  • the second IPv6 packet is sent to the CPE2 on the tunnel.
  • the second IPv6 packet is sent to the CGN through the default route.
  • the destination IPv6 address in Table 1 defaults to the IPv6 address of the CGN.
  • Step 34 After decapsulating the second IPv6 packet, the CGN converts the private IPv4 address of the HI in the second IPv6 packet to the public IP address of the HI according to the network address translation table, according to the publicity of the H2 in the second IPv6 packet. Find the IPv6 address of CPE2 by using the IPv4 address.
  • the CGN After receiving the second IPv6 packet, the CGN removes the source address and the destination address in the second IPv6 packet, and then encapsulates the source address and the destination address for the packet sent to the CPE2.
  • the CGN queries the network address translation table for the corresponding option according to the CPE1 IPv6 address + the source private IPv4 address + the source private port. If not, the CGN allocates a public IPv4 address and the public end to the private IPv4 address and the source private right port. Create an entry and modify the source private IPv4 address and port in the packet to the corresponding public IPv4 address and public port.
  • Step 35 The CGN encapsulates the IPv6 address of the CPE2 and the IPv6 address of the CGN into the second IPv6 packet, and forms a third IPv6 packet and sends a third IPv6 packet to the CPE2.
  • the main content of the third IPv6 packet is as shown in Table 5. Show.
  • Step 36 If the IPv6 address of the CPE1 and the IPv6 address of the CPE2 are recorded in the CPE address table of the CGN, the CGN sends a mapping entry between the private IPv4 address of the HI and the public IPv4 address of the HI to the CPE1, and the public IPv4 address of the H2. Mapping entry of the IPv6 address of the CPE2;
  • the CPE1 stores the mapping entries of the private IPv4 address of the HI and the public IPv4 address of the HI, and the mapping entries of the public IPv4 address of the H2 and the IPv6 address of the CPE2, respectively, to the packet forwarding address information table and the address mapping table. in.
  • Step 35 is performed in synchronization with step 36.
  • Step 37 CPE2 decapsulates the third IPv6 packet and converts the public address and the private address to form a second IPv4 packet and sends it to H2.
  • the public IPv4 address and port of the H2 are translated into the private IPv4 address and port of the H2. .
  • the main contents of the second IPv4 packet are shown in Table 6.
  • Table 6 shows the main contents of the second IPv4 packet. It should be noted that, in this embodiment, when H2 is used as the source end to send packets to the HI for the first time, The packet is forwarded in the method of step 32 to step 37 in this embodiment to prepare for packet forwarding between subsequent CPE tunnels.
  • step 38 to step 311 are performed.
  • Step 38 The CPE1 receives the first IPv4 packet that is sent by the HI and accesses the H2.
  • Step 39 The CPE1 obtains the IPv6 address of the CPE2 corresponding to the public IPv4 address of the H2 from the packet forwarding address information table according to the public IPv4 address of the H2 in the first IPv4 packet.
  • Step 310 According to the address mapping table, CPE1 converts the private IPv4 address of the HI in the first IPv4 packet to the public IPv4 address of the HI, and encapsulates the IPv6 address of the CPE1 and the IPv6 address of the CPE2 into the first IPv4 packet.
  • An IPv6 message
  • Step 311 CPE1 sends the first IPv6 packet to CPE2.
  • Step 312 The CPE2 decapsulates the first IPv6 packet and converts the public address and the private address to form a second IPv4 packet.
  • mapping of the private address port and the public address port of the H2 maintained in the local address mapping table of the second CPE may be formed before the beginning of the interaction process, and may also be implemented in various other manners, such as static configuration or NAT UDP simple traversal ( Simple Traversal of User Datagram Protocol through Network Address Translators (STUN), etc., will not be described here.
  • Step 313 CPE2 sends the second IPv4 packet to H2.
  • the packets are forwarded to the H2 by the CPE1, the CGN, and the CPE2.
  • the CGN sends the address mapping table and the packet forwarding address information table to the first CPE and the second CPE according to the locally saved CPE address table.
  • the packet forwarding address information table includes an IPv6 address of the second CPE or an IPv6 of the first CPE. The address is such that subsequent packets are forwarded directly to each other through the CPE without going through a tunnel between the CPE and the CGN.
  • Embodiment 4 is a schematic structural diagram of Embodiment 1 of a client device according to the present invention. As shown in FIG. 4, this embodiment includes: a first IPv4 packet receiving module 41, an address obtaining module 42, an address converting module 43, and an address encapsulating module. 44 and a first IPv6 message sending module 45.
  • the first IPv4 packet receiving module 41 is configured to receive the first IPv4 packet sent by the source host, where the source address of the first IPv4 packet is a private IPv4 address of the source host, and the destination address of the first IPv4 packet is the destination host. Public IPv4 address;
  • the source and destination hosts are on different IPv4 networks and connected through an IPv6 network.
  • the address obtaining module 42 is configured to obtain, according to the public IPv4 address of the destination host, the IPv6 address of the second client device corresponding to the public IPv4 address of the destination host from the packet forwarding address information table; the packet forwarding address information table includes the public IPv4 address. A mapping entry between the address and the IPv6 address of the second client device.
  • the address translation module 43 is configured to convert the private IPv4 address of the source host in the first IPv4 packet to the public IPv4 address of the source host according to the address mapping table.
  • An address encapsulating module 44 configured to: use an IPv6 address of the first client device and a second client device
  • the IPv6 address is encapsulated into the first IPv4 packet to form a first IPv6 packet.
  • the address mapping table includes a mapping entry between the private IPv4 address and the public IPv4 address.
  • the first IPv6 packet sending module 45 is configured to send the first IPv6 packet to the second client device.
  • the source address of the first IPv6 packet is an IPv6 address of the first client device
  • the destination of the first IPv6 packet is The address is the IPv6 address of the second client device.
  • the functions and relationships of the modules are as follows: After the first IPv4 packet receiving module 41 receives the first IPv4 packet sent by the source host, the address obtaining module 42 forwards the packet according to the public IPv4 address of the destination host in the first IPv4 packet.
  • the IPv6 address of the second client device corresponding to the public IPv4 address of the destination host is obtained in the address information table.
  • the address translation module 43 converts the private IPv4 address of the source host in the first IPv4 packet to the public IPv4 address of the source host according to the address mapping table.
  • the address encapsulating module 44 encapsulates the IPv6 address of the first client device and the IPv6 address of the second client device into the address translation module 43.
  • the first IPv6 packet is formed in the first IPv4 packet.
  • the first IPv6 packet sending module 45 sends the first IPv6 packet formed by the address encapsulating module 44 to the second CPE.
  • the first IPv4 packet receiving module 41 in the client device receives the packet from the source host to the destination host, the first IPv4 packet is processed by the address obtaining module 42, the address converting module 43, and the address encapsulating module 44.
  • the first IPv6 packet is formed.
  • the first IPv6 packet sending module 45 follows the first
  • the destination address of the IPv6 packet directly sends the first IPv6 packet to the second CPE.
  • the tunnel between the CPE and the CGN is forwarded to the second CPE. This reduces the burden of network traffic and CGN.
  • FIG. 5 is a schematic structural diagram of Embodiment 2 of a client device according to the present invention. As shown in Figure 5, in the figure
  • a registration module 47 corresponding to the embodiment, further comprising: a registration module 47, a second IPv6 message sending module 48, an address information receiving module 49, and an address information saving module 410.
  • the registration module 47 is configured to send, to the CGN, registration information including an IPv6 address of the first client device. After receiving the registration information, the CGN saves the IPv6 address of the first client device to the client device address table.
  • the second IPv6 packet sending module 48 is configured to encapsulate the IPv6 address of the first client device and the IPv6 address of the CGN into the first IPv4 packet to form a second IPv6 packet, and send the second IPv6 packet to the CGN.
  • the source address of the second IPv6 packet is the IPv6 address of the first client device
  • the destination address of the second IPv6 packet is the IPv6 address of the CGN.
  • the address information receiving module 49 is configured to: after the CGN processes the second IPv6 packet, receive a mapping entry of the public IPv4 address of the destination host sent by the CGN according to the client device address table and the IPv6 address of the second client device, and A mapping entry between the private IPv4 address of the source host and the public IPv4 address of the source host.
  • the address information saving module 410 is configured to save the mapping entry between the private IPv4 address of the source host and the public IPv4 address of the source host to the packet forwarding address information table, and the public IPv4 address of the destination host and the second client device The mapping entry of the IPv6 address is saved to the address mapping table.
  • the registration module 47 sends registration information to the CGN to Indicates that packets are forwarded in the tunnel between CPEs.
  • the second IPv6 packet sending module 48 sets the IPv6 address of the first client device and the CGN.
  • the IPv6 address is encapsulated into the first IPv4 packet to form a second IPv6 packet, and the second IPv6 packet is sent to the CGN.
  • the CGN forwards the packet through the CPE tunnel, and the CGN sends the first IPv4 packet to the first client device.
  • the address information used.
  • the address information receiving module 49 receives the mapping entry of the public IPv4 address of the destination host and the IPv6 address of the second client device sent by the CGN according to the client device address table, and the source host.
  • the mapping entry is a mapping relationship used by the CGN to process the second IPv6 packet, and the address information saving module 410 saves the information received by the address information receiving module 49 to the packet forwarding address information table and the address mapping. table.
  • the address information saving module 410 has saved the private IPv4 address of the active host and the public IPv4 mapping entry. And the IPv6 address of the second CPE corresponding to the public IPv4 address of the destination host.
  • the first IPv6 packet is processed by the address obtaining module 42, the address translation module 43, and the address encapsulating module 44 to form a first IPv6 packet.
  • the first IPv6 packet sending module 45 directly sends the first IPv6 packet to the second CPE according to the destination address in the first IPv6 packet.
  • the client device receives the mapping entry of the public IPv4 address of the destination host and the IPv6 address of the second client device sent by the CGN, and the private IPv4 of the source host by the address information storage module 410.
  • the mapping entry between the address and the public IPv4 address of the source host is saved in the packet forwarding address information table and the address mapping table. Therefore, when the first IPv4 packet receiving module 41 subsequently receives the first IPv4 packet from the same source host to the same destination host, the first IPv6 packet sending module 45 can directly send the first IPv6 packet to the second CPE. . Therefore, this embodiment reduces Less network traffic.
  • FIG. 6 is a schematic structural diagram of Embodiment 1 of a network address translation device according to the present invention. As shown in FIG. 6, the embodiment includes: a second IPv6 packet receiving module 51, a third IPv6 packet encapsulating module 52, a third IPv6 packet sending module 53, and an address information sending module 54.
  • the second IPv6 packet receiving module 51 is configured to receive the second IPv6 packet sent by the first client device, where the source address of the second IPv6 packet is an IPv6 address of the first client device, and the destination of the second IPv6 packet is The address is the IPv6 address of the CGN.
  • the second IPv6 packet includes the private IPv4 address of the source host and the public IPv4 address of the destination host.
  • the third IPv6 packet encapsulating module 52 is configured to: after decapsulating the second IPv6 packet, convert the private IPv4 address of the source host in the second IPv6 packet to the public IPv4 address of the source host according to the network address translation table, and The IPv6 address of the second client device is searched according to the public IPv4 address of the destination host, and the IPv6 address of the second client device and the IPv6 address of the CGN are encapsulated into the second IPv6 packet to form a third IPv6 packet.
  • the third IPv6 packet sending module 53 is configured to send a third IPv6 packet to the second client device.
  • the address information sending module 54 is configured to: when the IPv6 address of the second client device and the IPv6 address of the first client device are recorded in the client device address table, send the private IPv4 address of the source host to the first client device.
  • the client device address table is used to record and support the tunnel forwarding of packets between the client devices.
  • the IPv6 address of the client device is used to record and support the tunnel forwarding of packets between the client devices.
  • the second IPv6 packet receiving module 51 receives the second IPv6 packet sent by the first client device
  • the third IPv6 packet encapsulating module 52 receives the second IPv6 packet receiving module 51.
  • the second IPv6 packet is decapsulated and processed to form a third IPv6 packet.
  • the address information sending module 54 searches for the IPv6 address of the first CPE and the IPv6 address of the second CPE in the locally saved CPE address table, the mapping used by the third IPv6 packet encapsulating module 52 to process the second IPv6 packet is used.
  • the entry is sent to the first CPE.
  • the foregoing solution base further includes: a registration information receiving module 55 and registration information storage Module 56.
  • the registration information receiving module 55 is configured to receive first registration information sent by the first client device and second registration information sent by the second client device, where the first registration information includes an IPv6 address of the first client device, and second The registration information includes the IPv6 address of the second client device.
  • the registration information saving module 56 is configured to save the IPv6 address of the first client device and the IPv6 address of the second client device to the CPE address table, respectively.
  • the third IPv6 packet sending module 53 when the third IPv6 packet sending module 53 sends the third IPv6 packet to the second client device, the third IPv6 packet encapsulating module 52 reports the second IPv6 packet to the second IPv6 packet by the address information sending module 54.
  • the mapping entry used by the text processing is sent to the first CPE, so that when the first CPE receives the first IPv4 packet, the first CPE can process the first IPv4 packet by using the foregoing mapping entry, and the IPv4 address is public according to the destination host.
  • the mapping with the IPv6 address of the second CPE directly sends the processed packet to the second CPE.
  • FIG. 8 is a schematic structural diagram of Embodiment 1 of an access system between hosts according to the present invention. As shown in FIG. 8, the embodiment includes: a source host 81, a destination host 82, a first client device 83, and a second client device 84.
  • the source host 81 is configured to send a first IPv4 packet to the first client device to access the destination host.
  • the source address of the first IPv4 packet is a private IPv4 address of the source host 81, and the destination address of the first IPv4 packet is a destination.
  • the public IPv4 address of the host 82; the source host and the destination host are located on different IPv4 networks, and are connected through an IPv6 network;
  • the first client device 83 is configured to obtain an IPv6 address of the second client device corresponding to the public IPv4 address of the destination host according to the packet forwarding address information table, and source the first IPv4 packet according to the address mapping table.
  • the private IPv4 address of the host is translated into the public IPv4 address of the source host, and the IPv6 address of the first client device and the IPv6 address of the second client device 84 are encapsulated into the first IPv4 packet to form a first IPv6 packet.
  • Second client device; The second client device 84 is configured to receive the first IPv6 packet sent by the first client device 83, and send the first IPv6 packet to the destination host 82.
  • the first client device 83 After receiving the first IPv4 packet sent by the source host, the first client device 83 obtains the public IPv4 address of the destination host in the first IPv4 packet according to the packet forwarding address information table. And corresponding to the IPv6 address of the second client device; and converting the private IPv4 address of the source host in the first IPv4 packet to the public IPv4 address of the source host according to the address mapping table, and the IPv6 address of the first client device and The IPv6 address of the second client device is encapsulated into the first IPv4 packet to form a first IPv6 packet and sent to the second client device 84. Therefore, the first IPv4 packet does not need to pass through the tunnel between the CPE and the CGN twice, which reduces the burden of the CGN.
  • FIG. 9 is a schematic structural diagram of Embodiment 2 of an access system between hosts according to the present invention. As shown in FIG. 9, on the basis of the technical solution corresponding to FIG. 8, the embodiment further includes: a network address translation device 85.
  • the first client device 83 is further configured to send, to the network address translation device, registration information including an IPv6 address of the first client device, before receiving the first IPv4 packet sent by the source host, where the first client device is The IPv6 address and the IPv6 address of the network address translation device are encapsulated into the first IPv4 packet to form a second IPv6 packet, which is sent to the network address translation device.
  • the network address translation device 85 is configured to convert the private IPv4 address of the source host in the second IPv6 packet to the public IPv4 address of the source host, and search for the IPv6 address of the second client device according to the public IPv4 address of the destination host,
  • the IPv6 address of the client device and the IPv6 address of the network address translation device are encapsulated into the second IPv6 packet to form a third IPv6 packet, which is sent to the second client device; and the second client is recorded in the client device address table.
  • the mapping between the private IPv4 address of the source host and the public IPv4 address of the source host, and the public IPv4 address of the destination host and the second host are sent to the first client device. Mapping entry of the IPv6 address of the client device.
  • the first client device 83 is further configured to receive the network address translation device according to the client device address table.
  • the mapping entry between the public IPv4 address of the destination host and the IPv6 address of the second client device is saved to the packet forwarding address information table, and the mapping entry between the private IPv4 address of the source host and the public IPv4 address of the source host is received. And save to the address mapping table.
  • the second client device 84 is configured to receive a third IPv6 packet sent by the network address translation device, and send a third IPv6 packet to the destination host.
  • the network address translation device 85 sends a mapping entry between the private IPv4 address of the source host and the public IPv4 address of the source host to the first client device 83, and the public IPv4 address of the destination host and the second Mapping entry of the IPv6 address of the client device. Therefore, when the first source device 83 receives the first IPv4 packet from the same source host, the first client device 83 processes the first IP v4 packet according to the mapping entry, and sends the processed packet to the first IPv4 packet.
  • the second client device 84 achieves the purpose of reducing network traffic.
  • the steps of implementing the above method embodiments may be performed by hardware related to program instructions, and the foregoing program may be stored in a computer readable storage medium, and when executed, the program includes The foregoing steps of the method embodiment; and the foregoing storage medium includes: a medium that can store program codes, such as a ROM, a RAM, a magnetic disk, or an optical disk.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Small-Scale Networks (AREA)

Abstract

L'invention concerne, selon des modes de réalisation, un procédé, un dispositif et un système d'accès inter-hôtes, le procédé comprenant les étapes consistant à : recevoir d'un hôte source un premier paquet IPv4, l'adresse source du premier paquet IPv4 constituant l'adresse IPv4 privée de l'hôte source; compte tenu de l'adresse IPv4 publique de l'hôte source, obtenir d'une table d'informations d'adresses de réacheminement de paquets l'adresse IPv6 d'un deuxième dispositif terminal client correspondant à l'adresse IPv4 publique de l'hôte de destination; compte tenu d'une table de mise en correspondance d'adresses, convertir l'adresse IPv4 privée de l'hôte source dans le premier paquet IPv4 en l'adresse IPv4 publique de l'hôte source, puis encapsuler l'adresse IPv6 d'un premier dispositif terminal client et l'adresse IPv6 du deuxième dispositif terminal client dans le premier paquet IPv4 pour former un premier paquet IPv6, lequel est transmis au deuxième dispositif terminal client. Les modes de réalisation de l'invention permettent de réduire le trafic sur le réseau.
PCT/CN2011/077351 2010-07-30 2011-07-20 Procédé, dispositif et système d'accès inter-hôtes WO2012013126A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201010244166.XA CN102143241B (zh) 2010-07-30 2010-07-30 主机间的访问方法、设备及系统
CN201010244166.X 2010-07-30

Publications (1)

Publication Number Publication Date
WO2012013126A1 true WO2012013126A1 (fr) 2012-02-02

Family

ID=44410453

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2011/077351 WO2012013126A1 (fr) 2010-07-30 2011-07-20 Procédé, dispositif et système d'accès inter-hôtes

Country Status (2)

Country Link
CN (1) CN102143241B (fr)
WO (1) WO2012013126A1 (fr)

Families Citing this family (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103297336B (zh) * 2012-03-02 2017-06-06 华为技术有限公司 转发网际协议分组的方法及设备
CN103780492B (zh) * 2012-10-25 2017-09-26 华为技术有限公司 报文转发的方法和相应设备
CN103796191B (zh) * 2014-03-05 2017-09-26 大唐移动通信设备有限公司 向用户终端发送数据的方法、装置及终端
CN105323326B (zh) * 2014-06-30 2018-07-24 中国电信股份有限公司 一种终端间通信的通用转换平台、服务器、系统及其方法
CN104468202B (zh) * 2014-11-26 2018-03-27 迈普通信技术股份有限公司 一种用户端设备的管理方法及装置
CN105812499B (zh) * 2014-12-31 2018-12-28 中国电信股份有限公司 通信方法和通信系统及虚拟客户终端设备
CN106657120A (zh) * 2016-12-31 2017-05-10 王旸 一种wifi安全体系架构

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2006053856A1 (fr) * 2004-11-18 2006-05-26 International Business Machines Corporation Tunnellisation de paquets ipv6
CN101094155A (zh) * 2007-08-02 2007-12-26 杭州华三通信技术有限公司 建立IPv6隧道的方法、IPv6隧道通信方法及IPv4边缘设备
CN101447935A (zh) * 2008-11-20 2009-06-03 华为技术有限公司 数据包转发方法、系统及设备

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR100803273B1 (ko) * 2005-12-27 2008-02-13 삼성전자주식회사 패킷 터널링하는 isatap 라우터 및 그 방법

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2006053856A1 (fr) * 2004-11-18 2006-05-26 International Business Machines Corporation Tunnellisation de paquets ipv6
CN101094155A (zh) * 2007-08-02 2007-12-26 杭州华三通信技术有限公司 建立IPv6隧道的方法、IPv6隧道通信方法及IPv4边缘设备
CN101447935A (zh) * 2008-11-20 2009-06-03 华为技术有限公司 数据包转发方法、系统及设备

Also Published As

Publication number Publication date
CN102143241A (zh) 2011-08-03
CN102143241B (zh) 2014-07-09

Similar Documents

Publication Publication Date Title
WO2012013126A1 (fr) Procédé, dispositif et système d'accès inter-hôtes
JP5335886B2 (ja) ローカル・ネットワーク間でデータ・パケットを通信するための方法および装置
WO2009111977A1 (fr) Procédé système et appareil d’envoi pour informations de cartographie
WO2009094928A1 (fr) Procédé et équipement de transmission d'un message basé sur le protocole de tunnel de niveau 2
JP2006050626A (ja) ネットワークアドレス変換方法および装置
WO2011160367A1 (fr) Procédé et dispositif d'acheminement pour traduction d'adresse réseau
WO2010108431A1 (fr) Procédé permettant à un hôte sous ipv6 de visiter un hôte sous ipv4, procédé d'obtention du préfixe d'adresse ipv6 et dispositif de transcription
WO2012106935A1 (fr) Procédé de configuration de réseau de communication de données, élément de passerelle, et système de communication de données
WO2011140843A1 (fr) Procédé, appareil et système d'acheminement de messages
WO2011098039A1 (fr) PROCÉDÉ, SYSTÈME ET DISPOSITIF D'ACQUISITION D'INFORMATION SUR LA CONFIGURATION DE L'IPv6 DANS UN RÉSEAU DE TRANSITION IPv6
WO2012034456A1 (fr) Procédé pour obtenir un dns et dispositif de passerelle en mode tunnel
WO2012083657A1 (fr) Procédé et système de traitement de paquets et équipement des locaux d'abonné
WO2012119390A1 (fr) Procédé et système de notification de migration de machine virtuelle
WO2012149839A1 (fr) Procédé et dispositif d'envoi de paquets de protocole internet
WO2011137842A1 (fr) Procédé de transmission de données basé sur une entité cgn (carrier grade nat), entité cgn, passerelle et système associés
WO2010111962A1 (fr) Procédé, appareil et système de recherche de dispositif de traduction d'adresse réseau de classe transporteur
WO2011131088A1 (fr) Procédé de traitement de message de données, routeur de tunnel d'entrée et système
KR101901341B1 (ko) 사용자 장치의 이동성을 지원하는 네트워크 접속 방법 및 장치
EP2675117A1 (fr) Procédé et dispositif de routage pour un hôte dans un site de multi-homing
WO2009082896A1 (fr) Procédé et convertisseur pour la transmission de messages de données
WO2014114058A1 (fr) Procédé de réacheminement de messages de données, système et équipement destinés aux abonnés
WO2011107052A2 (fr) Procédé permettant d'éviter les conflits d'adresse et noeud de réception associé
US8547998B2 (en) Tunneling IPv6 packet through IPv4 network using a tunnel entry based on IPv6 prefix and tunneling IPv4 packet using a tunnel entry based on IPv4 prefix
WO2012109864A1 (fr) Procédé et dispositif de transfert de messages
WO2013082947A1 (fr) Procédé et dispositif périphérique pour réacheminer un message multicast ipv6 dans un réseau ipv4

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 11811827

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 11811827

Country of ref document: EP

Kind code of ref document: A1